Google Publicly Discloses macOS Kernel Vulnerability

After discovering security vulnerabilities in several Microsoft products, including Windows 10 itself, the Google Project Zero team returns with a new public disclosure, this time affecting Apple’s macOS.

Because as the security researchers working at Google discovered, a vulnerability in the macOS kernel allows an attacker to abuse the way filesystem images are mounted to make data changes.

In the technical analysis of the vulnerability, the Google Project Zero team explains that the way the copy-on-write feature is implemented in macOS makes it possible for a user to make changes to a mounted file system image without the operating system to be aware of them.

“If an attacker can mutate an on-disk file without informing the virtual management subsystem, this is a security bug. MacOS permits normal users to mount filesystem images. When a mounted filesystem image is mutated directly (e… (read more)

Source link

Remember to like our facebook and our twitter @geekchrome for a chance to win a free android tablet every month!

Quick Links: Download Chrome GamesTop 5 Dress Up Games For Girls On Chrome | Top 5 iTunes Alternatives On Chromebook | Best Photoshop Alternatives On Chromebook | Download Google Chrome Apps

Juniya

Juniya

A web developer, programmer, ubuntu and chrome os supporter. I also love comic books and I enjoy researching history facts, kind of weird right? My role on Chromegeek.com is to make sure everything works 24/7.